Automated bots are being used to steal retail gift card balances, according to San-Francisco-based cybersecurity company Distil Networks. GiftGhostBot, a malicious automated application, has attacked more than 1,000 consumer websites during the last month.

The attacks began in late February, when security analysts noticed an increase of bot activity on customer websites. The bots were testing a rolling list of potential gift card account numbers and requesting each one's balance. If fraudsters were able to obtain a card's correct balance, it was re-sold on the dark web or used to purchase items. GiftGhostBot didn't discriminate - it was used across the world to infiltrate multiple hosting providers and numerous data centers.

Advertisement

"Like most sophisticated bot attacks, GiftGhostBot operators are moving quickly to evade detection, and any retailer that offers gift cards could be under attack at this very moment," said Rami Essaid, CEO of Distil Networks. "While it is important to understand that retailers are not exposing consumers' personal information, consumers should remain vigilant. Check gift card balances, contact retailers and ask for more information. In order to prevent resources from being drained, individuals and companies must work together to prevent further damage."

Distil cybersecurity experts discovered four million bad bot requests in just 60 minutes on one customer website. Even more alarming - the fraudsters could test up to 1.7 million potential gift card account numbers per hour using GiftGhostBot.

Distil recommends checking gift card balances regularly, and to contact law authorities if you notice any suspicious activity.